Beta is now open - try it for free.

Empowering you to build security within your business.

We initially designed upmind as an internal tool for our own businesses. We had hundreds of staff working with hundreds of thousands of customers. At that scale we had to build systems that expected human error and enforced security.

European GDPR regulations then brought in the rights of customers to access and remove client data, as well as set rules on where that data could be shared.

Two Factor Authentication

2FA requires a login be authenticated with a secondary device, usually a mobile phone. This is optionally supported on all client and staff accounts. You can enforce usage of two factor authentication.

Delegate access

Your clients can also share access to their products and services by adding others as delegates. This means that clients do not need to share logins with others, and that the delegate access can be restricted. It also means that access can be revoked with the click of a button.

Granular staff permissions

Staff groups can be created, with permissions defined down to thousands of individual functionality calls. In multi-brand mode, staff can be assigned to just one brand.

For usability, staff seeing errors are told which functionality they are missing so they can easily feed back.

FraudMind™ fraud scanning

Every order is processed through our own FraudMind fraud prevention system which provides a score. You can set at which point orders should be blocked or rejected.

SCA & Tokenisation

We keep you up to date with card processing requirements such as secure card authentication automatically. You do not need to go through PCI checks yourself.

Logs and audits

All actions in upmind are logged permanently, against IP addresses and users.

Information security policies

Please see our information security from our documentation.